CVE-2019-4366: Medium severity IBM Cognos Analytics vulnerability
Published Jul 30, 2020
·Updated
IBM Cognos Analytics 11.0 and 11.1 is susceptible to an information disclosure vulnerability where an attacker could gain access to cached browser data. IBM X-Force ID: 161748.
Other sources
IBM Cognos Analytics is susceptible to an information disclosure vulnerability where an attacker could gain access to cached browser data.
Affected Software
2 affected components
IBM Cognos Analytics=11.0.0
IBM Cognos Analytics=11.1.0
Event History
Jul 30, 2020
CVE Published
via IBM·12:00 AM
Data Sourced
via IBM·12:00 AM
DescriptionSeverityAffected Software
Aug 3, 2020
CVE Published
via MITRE·12:35 PM
Data Sourced
via MITRE·12:35 PM
DescriptionSeverityWeakness
Frequently Asked Questions
1
What is the vulnerability ID for this information disclosure vulnerability in IBM Cognos Analytics?
The vulnerability ID is CVE-2019-4366.
2
What is the severity of CVE-2019-4366?
CVE-2019-4366 has a severity rating of 5.3 (medium).
3
What is the affected software version range for CVE-2019-4366?
IBM Cognos Analytics versions 11.0.0 and 11.1.0 are affected by this vulnerability.
4
How can an attacker exploit this vulnerability in IBM Cognos Analytics?
An attacker can exploit this vulnerability to gain access to cached browser data in IBM Cognos Analytics.
5
Is there any additional information available about this vulnerability?
More information about this vulnerability can be found at the following references: [1] [2]